Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/I3H1fanf464PQzOahLtySWR8I1I.roa
File: I3H1fanf464PQzOahLtySWR8I1I.roa (raw, json)
Hash identifier: pdU2Lp6BJwELlTfV5HaeBJuKjg8UMKVY39rpPSefs0U=
Subject key identifier: 23:71:F5:7D:A9:DF:E3:AE:0F:43:33:9A:84:BB:72:49:64:7C:23:52
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018459A918FB905D67E2F71CFBF50DADFF19
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/I3H1fanf464PQzOahLtySWR8I1I.roa
Signing time: Tue 08 Nov 2022 23:52:44 +0000
ROA not before: Tue 08 Nov 2022 23:52:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207556
IP address blocks: 2a0e:b100:100::/48 maxlen: 48
2a10:2f00:181::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:59:a9:18:fb:90:5d:67:e2:f7:1c:fb:f5:0d:ad:ff:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 8 23:52:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2371f57da9dfe3ae0f43339a84bb7249647c2352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:8b:d7:77:57:32:3a:ba:93:9a:b8:4d:60:af:
46:29:2c:ee:c6:1b:cc:a2:53:6f:39:38:bd:a5:53:
02:71:33:d9:c6:08:dd:81:d6:85:e7:1b:9f:3a:06:
fe:b4:8e:d5:53:e2:23:3c:da:23:e7:bd:a3:a1:61:
f0:f8:46:3f:ed:7c:7e:96:52:4b:3b:39:b6:8a:70:
39:fe:2c:1c:e2:79:94:4e:43:8d:87:ed:00:10:f4:
b7:eb:74:4d:4d:13:51:f9:1a:e4:47:73:e5:15:8b:
65:89:fb:bd:d4:e4:56:7d:3e:36:15:02:88:4e:db:
16:2c:8e:ac:b8:eb:79:0a:1d:d3:a0:33:61:07:09:
1b:57:e0:4d:f0:98:09:e5:0a:20:7b:98:93:8d:84:
7a:40:86:f1:a5:7a:ee:dd:1b:f0:cc:86:4e:8b:4f:
a3:80:f6:f3:29:48:02:6c:b0:6c:69:bc:9c:63:f6:
7e:73:d3:ed:a6:b6:ab:dc:92:be:77:a0:c4:19:e1:
dc:99:10:ac:8f:96:8a:43:1e:df:33:a6:54:36:fd:
f9:a4:ba:2d:ec:04:bc:bc:84:a2:21:fb:a1:bd:56:
c0:a3:40:d5:38:d8:06:5d:c9:c9:8d:1a:83:be:b0:
26:49:ef:52:a7:77:74:10:ec:5d:ad:07:24:9e:2c:
b4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:71:F5:7D:A9:DF:E3:AE:0F:43:33:9A:84:BB:72:49:64:7C:23:52
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/I3H1fanf464PQzOahLtySWR8I1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b100:100::/48
2a10:2f00:181::/48
Signature Algorithm: sha256WithRSAEncryption
6a:f4:91:f7:54:ee:10:15:31:da:b6:73:e7:5c:67:74:2b:c6:
f4:fd:ed:48:0f:e2:c6:3a:01:89:cb:c9:df:47:d7:04:7c:61:
2a:85:3f:aa:8a:90:91:ac:df:d4:67:57:89:ed:98:17:4e:94:
2f:30:7c:f9:77:0e:1e:ce:39:d7:58:3b:6f:b2:27:ad:ba:32:
28:f6:e4:34:74:31:d9:81:29:f3:d6:d4:05:d3:08:d4:fa:91:
a8:2f:41:cd:a4:81:71:32:6d:cf:bd:3d:da:19:38:e8:91:fd:
55:ff:2c:b2:5a:7c:2a:db:26:11:38:33:0c:ec:e4:f8:3a:59:
10:c3:7f:c7:b1:43:7f:1d:0a:43:1c:5e:ec:30:64:6f:0c:0c:
ae:db:be:6f:b8:76:49:fd:50:44:1e:d4:45:26:51:12:f1:6c:
e7:60:b8:56:89:04:3f:60:28:9f:af:b3:f7:0a:17:94:86:3d:
55:ee:55:fa:0c:de:b4:69:4a:9b:84:fc:14:22:de:15:a5:e2:
b7:70:8a:6e:7e:29:88:cf:a0:79:11:73:bc:96:c3:ee:a6:62:
6b:80:7d:d9:ef:5e:13:03:7d:f8:57:ef:ba:1b:58:0d:f1:7d:
7a:9b:bd:bc:df:d9:2c:f8:ac:f7:49:75:24:f9:cd:a7:d2:da:
26:9e:ec:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:59 2024 by rpki-client on console-ams.rpki-client.org